1996-08-25 17:27:01 +00:00
|
|
|
TODO list (most will be addressed in the next rewrite)
|
1993-11-27 23:48:09 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
01) Redo parsing to be more like op(8) with true command aliases where
|
1994-02-25 21:04:25 +00:00
|
|
|
can specify uid, gid(s) and part/all of the environment.
|
1994-02-28 04:27:30 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
02) Add default options to sudoers file (umask, def uid, def gids, dir, PATH).
|
1994-08-05 22:35:56 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
03) Add a SHELLS reserved word that checks against /etc/shells.
|
1994-08-13 21:16:28 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
04) Make the sudoers file accessible via NIS, Hesiod, and maybe NetInfo.
|
1994-08-31 23:52:59 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
05) Add a %h field to MAILSUBJECT for the hostname.
|
1994-08-31 23:52:59 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
06) Add a -h (?) flag to sudo for a history mechanism.
|
1994-09-01 19:55:05 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
07) Make parse.lex in the same coding style as everything else...
|
1995-03-29 00:36:09 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
08) Add an option to hard-code LD_LIBRARY_PATH?
|
1995-03-29 00:36:09 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
09) Add Prog_Alias facility (Prog_Alias VI = /usr/secure/bin/vi +args).
|
1995-04-01 06:53:59 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
10) Make '!' work in Cmnd_Alias, Host_Alias, User_Alias and runas list.
|
1995-04-01 06:53:59 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
11) check for <net/errno.h> in configure and include it in sudo.c if it exists.
|
1995-04-01 08:12:27 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
12) Add generic STREAMS support for getting interfaces and netmasks.
|
1995-07-01 20:07:44 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
13) Do shadow password detection at runtime like sunos' issecure(3)???
|
1996-01-14 20:25:06 +00:00
|
|
|
If so then start using GLOBAL_NO_SPW_ENT again (but rename it).
|
1995-07-01 20:07:44 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
14) Do all the envariable additions in one fell swoop for efficiency and speed.
|
1995-07-01 20:07:44 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
15) Catch/ignore signals in sudo?
|
1996-01-14 20:25:06 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
16) Make -p work with -v and -l in any order.
|
1996-01-14 20:25:06 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
17) Add support for "safe scripts" by checking for shell script
|
1996-01-14 20:25:06 +00:00
|
|
|
cookie (first two bytes are "#!") and execing the shell outselves
|
|
|
|
|
after doing the stat to guard against spoofing. This should avoid
|
|
|
|
|
the race condition caused by going through namei() twice...
|
|
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
18) Sudo should not allow someone with a nil password to run commands.
|
1996-01-14 21:05:39 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
19) Overhaul testsudoers to use parse.o so we don't reimplement things.
|
1996-06-15 22:11:56 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
20) Make runas_user a struct "runas" with user and group components.
|
1996-06-15 22:11:56 +00:00
|
|
|
(make uid and gid too???)
|
|
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
21) Add -g group/gid option.
|
1996-06-15 22:11:56 +00:00
|
|
|
|
1996-08-25 17:27:01 +00:00
|
|
|
22) Make `sudo -l' output prettier.
|
